Search

Find a vulnerability

Search criteria

    4 vulnerabilities found for endpoint_protection_cloud_agent by symantec

    CVE-2018-18366 (GCVE-0-2018-18366)

    Vulnerability from nvd – Published: 2019-04-25 19:13 – Updated: 2024-08-05 11:08
    VLAI
    Summary
    Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type of issue where a specially crafted IRP request can cause the driver to return uninitialized memory.
    Severity
    No CVSS data available.
    CWE
    • Kernel memory disclosure
    Assigner
    References
    Impacted products
    Vendor Product Version
    Symantec Corporation Norton Security Affected: Prior to 22.16.3
    Create a notification for this product.
    Symantec Corporation SEP (Windows client) Affected: Prior to and including 12.1 RU6 MP9
    Affected: Prior to 14.2 RU1
    Create a notification for this product.
    Symantec Corporation SEP SBE Affected: Prior to Cloud Agent 3.00.31.2817
    Affected: NIS-22.15.2.22
    Affected: SEP-12.1.7484.7002
    Create a notification for this product.
    Symantec Corporation SEP Cloud Affected: Prior to 22.16.3
    Create a notification for this product.
    Date Public
    2019-04-15 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T11:08:21.470Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://support.symantec.com/en_US/article.SYMSA1479.html"
              },
              {
                "name": "107994",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/107994"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Norton Security",
              "vendor": "Symantec Corporation",
              "versions": [
                {
                  "status": "affected",
                  "version": "Prior to 22.16.3"
                }
              ]
            },
            {
              "product": "SEP (Windows client)",
              "vendor": "Symantec Corporation",
              "versions": [
                {
                  "status": "affected",
                  "version": "Prior to and including 12.1 RU6 MP9"
                },
                {
                  "status": "affected",
                  "version": "Prior to 14.2 RU1"
                }
              ]
            },
            {
              "product": "SEP SBE",
              "vendor": "Symantec Corporation",
              "versions": [
                {
                  "status": "affected",
                  "version": "Prior to Cloud Agent 3.00.31.2817"
                },
                {
                  "status": "affected",
                  "version": "NIS-22.15.2.22"
                },
                {
                  "status": "affected",
                  "version": "SEP-12.1.7484.7002"
                }
              ]
            },
            {
              "product": "SEP Cloud",
              "vendor": "Symantec Corporation",
              "versions": [
                {
                  "status": "affected",
                  "version": "Prior to 22.16.3"
                }
              ]
            }
          ],
          "datePublic": "2019-04-15T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type of issue where a specially crafted IRP request can cause the driver to return uninitialized memory."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Kernel memory disclosure",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-04-25T19:13:05.000Z",
            "orgId": "80d3bcb6-88de-48c2-a47e-aebf795f19b5",
            "shortName": "symantec"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://support.symantec.com/en_US/article.SYMSA1479.html"
            },
            {
              "name": "107994",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/107994"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@symantec.com",
              "ID": "CVE-2018-18366",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Norton Security",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Prior to 22.16.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "SEP (Windows client)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Prior to and including 12.1 RU6 MP9"
                              },
                              {
                                "version_value": "Prior to 14.2 RU1"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "SEP SBE",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Prior to Cloud Agent 3.00.31.2817"
                              },
                              {
                                "version_value": "NIS-22.15.2.22"
                              },
                              {
                                "version_value": "SEP-12.1.7484.7002"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "SEP Cloud",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Prior to 22.16.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Symantec Corporation"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type of issue where a specially crafted IRP request can cause the driver to return uninitialized memory."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Kernel memory disclosure"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://support.symantec.com/en_US/article.SYMSA1479.html",
                  "refsource": "CONFIRM",
                  "url": "https://support.symantec.com/en_US/article.SYMSA1479.html"
                },
                {
                  "name": "107994",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/107994"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "80d3bcb6-88de-48c2-a47e-aebf795f19b5",
        "assignerShortName": "symantec",
        "cveId": "CVE-2018-18366",
        "datePublished": "2019-04-25T19:13:05.000Z",
        "dateReserved": "2018-10-15T00:00:00.000Z",
        "dateUpdated": "2024-08-05T11:08:21.470Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2018-18369 (GCVE-0-2018-18369)

    Vulnerability from nvd – Published: 2019-04-25 16:55 – Updated: 2024-08-05 11:08
    VLAI
    Summary
    Norton Security (Windows client) prior to 22.16.3 and SEP SBE (Windows client) prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22 & SEP-12.1.7484.7002, may be susceptible to a DLL Preloading vulnerability, which is a type of issue that can occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead.
    Severity
    No CVSS data available.
    CWE
    • DLL Preloading
    Assigner
    References
    Impacted products
    Vendor Product Version
    Symantec Corporation Norton Security Affected: Prior to 22.16.3
    Create a notification for this product.
    Symantec Corporation Symantec Endpoint Protection Small Business Edition Affected: Prior to Cloud Agent 3.00.31.2817
    Affected: NIS-22.15.2.22
    Affected: SEP-12.1.7484.7002
    Create a notification for this product.
    Date Public
    2019-04-15 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T11:08:21.684Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://support.symantec.com/en_US/article.SYMSA1479.html"
              },
              {
                "name": "107997",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/107997"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Norton Security",
              "vendor": "Symantec Corporation",
              "versions": [
                {
                  "status": "affected",
                  "version": "Prior to 22.16.3"
                }
              ]
            },
            {
              "product": "Symantec Endpoint Protection Small Business Edition",
              "vendor": "Symantec Corporation",
              "versions": [
                {
                  "status": "affected",
                  "version": "Prior to Cloud Agent 3.00.31.2817"
                },
                {
                  "status": "affected",
                  "version": "NIS-22.15.2.22"
                },
                {
                  "status": "affected",
                  "version": "SEP-12.1.7484.7002"
                }
              ]
            }
          ],
          "datePublic": "2019-04-15T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Norton Security (Windows client) prior to 22.16.3 and SEP SBE (Windows client) prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22 \u0026 SEP-12.1.7484.7002, may be susceptible to a DLL Preloading vulnerability, which is a type of issue that can occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "DLL Preloading",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-04-25T16:55:04.000Z",
            "orgId": "80d3bcb6-88de-48c2-a47e-aebf795f19b5",
            "shortName": "symantec"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://support.symantec.com/en_US/article.SYMSA1479.html"
            },
            {
              "name": "107997",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/107997"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@symantec.com",
              "ID": "CVE-2018-18369",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Norton Security",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Prior to 22.16.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Symantec Endpoint Protection Small Business Edition",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Prior to Cloud Agent 3.00.31.2817"
                              },
                              {
                                "version_value": "NIS-22.15.2.22"
                              },
                              {
                                "version_value": "SEP-12.1.7484.7002"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Symantec Corporation"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Norton Security (Windows client) prior to 22.16.3 and SEP SBE (Windows client) prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22 \u0026 SEP-12.1.7484.7002, may be susceptible to a DLL Preloading vulnerability, which is a type of issue that can occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "DLL Preloading"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://support.symantec.com/en_US/article.SYMSA1479.html",
                  "refsource": "CONFIRM",
                  "url": "https://support.symantec.com/en_US/article.SYMSA1479.html"
                },
                {
                  "name": "107997",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/107997"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "80d3bcb6-88de-48c2-a47e-aebf795f19b5",
        "assignerShortName": "symantec",
        "cveId": "CVE-2018-18369",
        "datePublished": "2019-04-25T16:55:04.000Z",
        "dateReserved": "2018-10-15T00:00:00.000Z",
        "dateUpdated": "2024-08-05T11:08:21.684Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2018-18366 (GCVE-0-2018-18366)

    Vulnerability from cvelistv5 – Published: 2019-04-25 19:13 – Updated: 2024-08-05 11:08
    VLAI
    Summary
    Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type of issue where a specially crafted IRP request can cause the driver to return uninitialized memory.
    Severity
    No CVSS data available.
    CWE
    • Kernel memory disclosure
    Assigner
    References
    Impacted products
    Vendor Product Version
    Symantec Corporation Norton Security Affected: Prior to 22.16.3
    Create a notification for this product.
    Symantec Corporation SEP (Windows client) Affected: Prior to and including 12.1 RU6 MP9
    Affected: Prior to 14.2 RU1
    Create a notification for this product.
    Symantec Corporation SEP SBE Affected: Prior to Cloud Agent 3.00.31.2817
    Affected: NIS-22.15.2.22
    Affected: SEP-12.1.7484.7002
    Create a notification for this product.
    Symantec Corporation SEP Cloud Affected: Prior to 22.16.3
    Create a notification for this product.
    Date Public
    2019-04-15 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T11:08:21.470Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://support.symantec.com/en_US/article.SYMSA1479.html"
              },
              {
                "name": "107994",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/107994"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Norton Security",
              "vendor": "Symantec Corporation",
              "versions": [
                {
                  "status": "affected",
                  "version": "Prior to 22.16.3"
                }
              ]
            },
            {
              "product": "SEP (Windows client)",
              "vendor": "Symantec Corporation",
              "versions": [
                {
                  "status": "affected",
                  "version": "Prior to and including 12.1 RU6 MP9"
                },
                {
                  "status": "affected",
                  "version": "Prior to 14.2 RU1"
                }
              ]
            },
            {
              "product": "SEP SBE",
              "vendor": "Symantec Corporation",
              "versions": [
                {
                  "status": "affected",
                  "version": "Prior to Cloud Agent 3.00.31.2817"
                },
                {
                  "status": "affected",
                  "version": "NIS-22.15.2.22"
                },
                {
                  "status": "affected",
                  "version": "SEP-12.1.7484.7002"
                }
              ]
            },
            {
              "product": "SEP Cloud",
              "vendor": "Symantec Corporation",
              "versions": [
                {
                  "status": "affected",
                  "version": "Prior to 22.16.3"
                }
              ]
            }
          ],
          "datePublic": "2019-04-15T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type of issue where a specially crafted IRP request can cause the driver to return uninitialized memory."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Kernel memory disclosure",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-04-25T19:13:05.000Z",
            "orgId": "80d3bcb6-88de-48c2-a47e-aebf795f19b5",
            "shortName": "symantec"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://support.symantec.com/en_US/article.SYMSA1479.html"
            },
            {
              "name": "107994",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/107994"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@symantec.com",
              "ID": "CVE-2018-18366",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Norton Security",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Prior to 22.16.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "SEP (Windows client)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Prior to and including 12.1 RU6 MP9"
                              },
                              {
                                "version_value": "Prior to 14.2 RU1"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "SEP SBE",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Prior to Cloud Agent 3.00.31.2817"
                              },
                              {
                                "version_value": "NIS-22.15.2.22"
                              },
                              {
                                "version_value": "SEP-12.1.7484.7002"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "SEP Cloud",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Prior to 22.16.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Symantec Corporation"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type of issue where a specially crafted IRP request can cause the driver to return uninitialized memory."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Kernel memory disclosure"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://support.symantec.com/en_US/article.SYMSA1479.html",
                  "refsource": "CONFIRM",
                  "url": "https://support.symantec.com/en_US/article.SYMSA1479.html"
                },
                {
                  "name": "107994",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/107994"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "80d3bcb6-88de-48c2-a47e-aebf795f19b5",
        "assignerShortName": "symantec",
        "cveId": "CVE-2018-18366",
        "datePublished": "2019-04-25T19:13:05.000Z",
        "dateReserved": "2018-10-15T00:00:00.000Z",
        "dateUpdated": "2024-08-05T11:08:21.470Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2018-18369 (GCVE-0-2018-18369)

    Vulnerability from cvelistv5 – Published: 2019-04-25 16:55 – Updated: 2024-08-05 11:08
    VLAI
    Summary
    Norton Security (Windows client) prior to 22.16.3 and SEP SBE (Windows client) prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22 & SEP-12.1.7484.7002, may be susceptible to a DLL Preloading vulnerability, which is a type of issue that can occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead.
    Severity
    No CVSS data available.
    CWE
    • DLL Preloading
    Assigner
    References
    Impacted products
    Vendor Product Version
    Symantec Corporation Norton Security Affected: Prior to 22.16.3
    Create a notification for this product.
    Symantec Corporation Symantec Endpoint Protection Small Business Edition Affected: Prior to Cloud Agent 3.00.31.2817
    Affected: NIS-22.15.2.22
    Affected: SEP-12.1.7484.7002
    Create a notification for this product.
    Date Public
    2019-04-15 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T11:08:21.684Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://support.symantec.com/en_US/article.SYMSA1479.html"
              },
              {
                "name": "107997",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/107997"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Norton Security",
              "vendor": "Symantec Corporation",
              "versions": [
                {
                  "status": "affected",
                  "version": "Prior to 22.16.3"
                }
              ]
            },
            {
              "product": "Symantec Endpoint Protection Small Business Edition",
              "vendor": "Symantec Corporation",
              "versions": [
                {
                  "status": "affected",
                  "version": "Prior to Cloud Agent 3.00.31.2817"
                },
                {
                  "status": "affected",
                  "version": "NIS-22.15.2.22"
                },
                {
                  "status": "affected",
                  "version": "SEP-12.1.7484.7002"
                }
              ]
            }
          ],
          "datePublic": "2019-04-15T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Norton Security (Windows client) prior to 22.16.3 and SEP SBE (Windows client) prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22 \u0026 SEP-12.1.7484.7002, may be susceptible to a DLL Preloading vulnerability, which is a type of issue that can occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "DLL Preloading",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-04-25T16:55:04.000Z",
            "orgId": "80d3bcb6-88de-48c2-a47e-aebf795f19b5",
            "shortName": "symantec"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://support.symantec.com/en_US/article.SYMSA1479.html"
            },
            {
              "name": "107997",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/107997"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secure@symantec.com",
              "ID": "CVE-2018-18369",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Norton Security",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Prior to 22.16.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Symantec Endpoint Protection Small Business Edition",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Prior to Cloud Agent 3.00.31.2817"
                              },
                              {
                                "version_value": "NIS-22.15.2.22"
                              },
                              {
                                "version_value": "SEP-12.1.7484.7002"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Symantec Corporation"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Norton Security (Windows client) prior to 22.16.3 and SEP SBE (Windows client) prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22 \u0026 SEP-12.1.7484.7002, may be susceptible to a DLL Preloading vulnerability, which is a type of issue that can occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "DLL Preloading"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://support.symantec.com/en_US/article.SYMSA1479.html",
                  "refsource": "CONFIRM",
                  "url": "https://support.symantec.com/en_US/article.SYMSA1479.html"
                },
                {
                  "name": "107997",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/107997"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "80d3bcb6-88de-48c2-a47e-aebf795f19b5",
        "assignerShortName": "symantec",
        "cveId": "CVE-2018-18369",
        "datePublished": "2019-04-25T16:55:04.000Z",
        "dateReserved": "2018-10-15T00:00:00.000Z",
        "dateUpdated": "2024-08-05T11:08:21.684Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }